Long: Re: Konfigurace Samby

Pavel Janik ml. Pavel.Janik na inet.cz
Pátek Prosinec 19 00:15:51 CET 1997

   Datum: Ctvrtek, 18.prosince 1997 17:08:06 +0100 (MET)
   Odesilatel: Petr Snajdr <snajdr na pvt.net>

   > > tykajici se konfigurace samby, pripadne konfiguracni soubor pro tento
   > > pripad.
   > Myslite jak se prihlasit do domeny ?
   > Zkuste:
   > ftp://samba.anu.edu.au/pub/samba/docs/
   > http://samba.anu.edu.au/samba/

Dnes nekdo do hurricane-list na redhat.com poslal nasledujici dopis,
ktery by mel pravdepodobne postacovat vsem, kdo se snazi o neco

--- cut here ---
Odesilatel: "D. Dante Lorenso" <dlorenso na afai.com>
Datum: Ctvrtek, 18.prosince 1997 11:45:49 -0500

Samba users,

For those of you that wanted to know how I set
up SAMBA to control a domain like NT does, I
am including a copy of my smb.conf so that you
might have an example to reference.

You wont need the [tmp] stuff in the smb.conf.  I just
included that so you can see how I shared one of
the other directories.

I am not running windows NT (cant afford to) so...I
configured RedHat 5.0 to handle the logins for my
domain.  I called my workgroup LORENSO, and set
up the system in user security mode.  The following
steps outline the work I did:

1) Set up the server:
        Create the /etc/smb.conf file and the /home/netlogon
        share directory.

2) Restart the smbd and nmbd daemons:
        /etc/rc.d/init.d/smb stop; /etc/rc.d/init.d/smb start

3) Test the visibility from client machines:
        Look in the network neighborhood to see if the
        machine is visible.  If not...panic and cry...I'm not sure
        if I can help you.

4) Set up the Client Win95 machine:
        In the control panel, Click PASSWORDS...
        - then click User Profiles...Choose the bottom three
        of the four checkboxes
            a) Users can customize their settings...
            b) Include desktop items...
            c) Include Start Menu ...

        In the control panel, Click NETWORK...
        - then click Identification...set your WORKGROUP name
        - then click Access Control...set user-level access control
        and obtain list from ... enter your server name ie: REDHAT
        -then click Configuration...Add the client:
            under the properties of that, choose:
            a) Log on to win NT domain
            b) enter your WORKGROUP name...ie: LORENSO
            c) Log on and restore connections
        - Finally, set the primary network logon to

4) Set up the User Profiles:
        You'll have to know what your doing for this part,
        but I'll attempt to give you a start...
        - install the System Policy editor for Win95 (included
           on your win95 system CD
        - create a new config.pol and place it in the /home/netlogon
            directory of the REDHAT server
        - using the policy editor, Click File->Open Registry...
        - Then, set all the options to reflect your server and
            user config settings...
        - save everything...

5) Reboot...login and cross your fingers

6) if (email->didHelp) { &SendMeAPizza; }
    else { &GoRead("/usr/docs/$samba_doc_dir"); }

When setting up my system, I was having all sorts
of trouble getting the login on to the network...well, it
turns out that Windows 95: OSR2 sends an uppercased
password to the server.  I didn't know that... well, I changed
my unix password to all uppercase chars and ...voila!  login
successful ;)

You may want to change the [netlogon] and [homes]
directories permissions in the smb.conf ... that'll need to
be changed to increase the security... I left mine this way for
testing and so I can write to the netlogon while configuring

Although the documentation says you'll need wins support,
(I enabled it), I never set the NETWORK tcp/ip properties to
include a wins server, but I did edit my C:\win95\lmhosts file
to add the 192.168.14.XXX addresses and netbios names
of the three machines on my home network.

If I get a chance, I'll turn this mail into a website...It might take a
little while, though...

Best of luck...

D. Dante Lorenso
Accounting Firms Associated, inc.
dlorenso na afai.com

----------- 8< -------------------- 8< --------------------- 8< ------------

; The global setting for a RedHat default install
; smbd re-reads this file regularly, but if in doubt stop and restart it:
; /etc/rc.d/init.d/smb stop
; /etc/rc.d/init.d/smb start
;======================= Global Settings
   workgroup = Lorenso
   comment = RedHat Samba Server
   volume = RedHat5
   lock directory = /var/lock/samba
   locking = yes
   strict locking = yes
   share modes = yes
   security = user
   os level = 65
   domain master = yes
   local master = yes
   prefered master = yes
   domain logons = yes
   wins support = yes
   ;logon script = %m.bat ; per workstation (machine)
   ;logon script = %u.bat ; per username
   preserve case = yes
   short case preserve = yes
   case sensitive = no

   comment = Samba Network Logon Service
   path = /home/netlogon
   case sensitive = no
   guest ok = yes
   locking = no
   read only = no        ; I said no so I can still access it for
editing...you can say yes
   browseable = yes  ; say NO if you want to hide the NETLOGON share
   admin users = @wheel

   comment = Home Directories
   browseable = no
   writable = yes
   read only = no
   preserve case = yes
   short preserve case = yes
   create mode = 0750

   user = dlorenso
   force group = users
   comment = Temporary file space
   browsable = yes
   writable = yes
   path = /tmp
   read only = no
   public = yes

--- cut here ---

Pavel Janik ml.
Pavel.Janik na inet.cz

Další informace o konferenci Linux